Latest Apple Vulnerabilities

CVE-2024-31392
If an insecure element was added to a page after a delay, Firefox would not replace the secure icon with a mixed content security status
Mozilla Firefox=124
Apple iOS
CVE-2024-31393
Dragging Javascript URLs to the address bar could cause them to be loaded, bypassing restrictions and security protections
Mozilla Firefox=124
Apple iOS
MFSA2024-17
Security Vulnerabilities fixed in Firefox for iOS 124
Mozilla Firefox=124
Apple iOS
HT214094
About the security content of Safari 17.4.1
Apple Safari<17.4.1
HT214095
About the security content of macOS Ventura 13.6.6
Apple macOS Ventura<13.6.6
HT214096
About the security content of macOS Sonoma 14.4.1
Apple macOS Sonoma<14.4.1
HT214093
About the security content of visionOS 1.1.1
Apple visionOS<1.1.1
HT214098
About the security content of iOS 16.7.7 and iPadOS 16.7.7
Apple iOS<16.7.7
Apple iPadOS<16.7.7
HT214097
About the security content of iOS 17.4.1 and iPadOS 17.4.1
Apple iOS<17.4.1
Apple iPadOS<17.4.1
CVE-2024-23300
A use-after-free issue was addressed with improved memory management. This issue is fixed in GarageBand 10.4.11. Processing a maliciously crafted file may lead to unexpected app termination or arbitra...
Apple GarageB
HT214090
About the security content of GarageBand 10.4.11
Apple GarageB
HT214088
About the security content of watchOS 10.4
Apple watchOS<10.4
CVE-2024-23253
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to access a user's Photos Library.
Apple macOS Sonoma<14.4
CVE-2024-23234
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to execute arbitrar...
Apple macOS Sonoma<14.4
Apple macOS Ventura<13.6.5
Apple macOS Monterey<12.7.4
HT214085
About the security content of macOS Ventura 13.6.5
Apple macOS Ventura<13.6.5
CVE-2024-23295
A permissions issue was addressed to help ensure Personas are always protected This issue is fixed in visionOS 1.1. An unauthenticated user may be able to use an unprotected Persona.
Apple visionOS<1.1
CVE-2024-23216
A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to overwrite arbitrary files.
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
CVE-2024-23279
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.
Apple macOS Sonoma<14.4
CVE-2024-23233
AppleMobileFileIntegrity. This issue was addressed with improved checks.
Apple macOS Sonoma<14.4
HT214089
About the security content of Safari 17.4
<17.4
CVE-2024-23248
ColorSync. The issue was addressed with improved memory handling.
Apple macOS Sonoma<14.4
CVE-2024-23272
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. A user may gain access to protected parts of the file system.
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS Ventura<13.6.5
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
CVE-2024-23247
ColorSync. The issue was addressed with improved memory handling.
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
CVE-2024-23244
A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4. An app from a standard user account may be able to escalate privilege after adm...
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
CVE-2024-23238
An access issue was addressed with improved access restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to edit NVRAM variables.
Apple macOS Sonoma<14.4
CVE-2024-23258
An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution.
Apple macOS Sonoma<14.4
Apple visionOS<1.1
CVE-2024-23230
SharedFileList. This issue was addressed with improved file handling.
Apple macOS Sonoma<14.4
Apple macOS Ventura<13.6.5
Apple macOS Monterey<12.7.4
CVE-2024-23274
An injection issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS Ventura<13.6.5
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
CVE-2024-23260
This issue was addressed by removing additional entitlements. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data.
Apple macOS Sonoma<14.4
CVE-2024-23267
PackageKit. The issue was addressed with improved checks.
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
HT214084
About the security content of macOS Sonoma 14.4
Apple macOS Sonoma<14.4
CVE-2024-23276
A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
CVE-2024-23245
Shortcuts. This issue was addressed by adding an additional prompt for user consent.
Apple macOS Sonoma<14.4
Apple macOS Ventura<13.6.5
Apple macOS Monterey<12.7.4
CVE-2024-23294
QuartzCore. This issue was addressed by removing the vulnerable code.
Apple macOS Sonoma<14.4
CVE-2024-23281
System Settings. This issue was addressed with improved state management.
Apple macOS Sonoma<14.4
CVE-2024-23275
A race condition was addressed with additional validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to access protected user data.
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS Ventura<13.6.5
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
CVE-2024-23268
An injection issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An app may be able to elevate privileges.
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple macOS Ventura<13.6.5
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
HT214087
About the security content of visionOS 1.1
Apple visionOS<1.1
HT214086
About the security content of tvOS 17.4
Apple tvOS<17.4
HT214083
About the security content of macOS Monterey 12.7.4
Apple macOS Monterey<12.7.4
CVE-2024-23232
A privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Sonoma 14.4. An app may be able to capture a user's screen.
Apple macOS Sonoma<14.4
CVE-2024-23266
Kerberos v5 PAM module. The issue was addressed with improved checks.
Apple macOS Monterey<12.7.4
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS>=12.0.0<12.7.4
Apple macOS>=13.0<13.6.5
Apple macOS>=14.0<14.4
CVE-2024-23269
A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.4, macOS Monterey 12.7.4, macOS Ventura 13.6.5. An...
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
CVE-2024-23227
Airport. This issue was addressed with improved redaction of sensitive information.
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
CVE-2024-23249
ColorSync. The issue was addressed with improved memory handling.
Apple macOS Sonoma<14.4
CVE-2024-23285
Music. This issue was addressed with improved handling of symlinks.
Apple macOS Sonoma<14.4
CVE-2024-23298
A logic issue was addressed with improved state management.
Apple Xcode<15.3
CVE-2024-23283
A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5....
Apple macOS Ventura<13.6.5
Apple macOS Sonoma<14.4
Apple macOS Monterey<12.7.4
Apple iOS<16.7.6
Apple iPadOS<16.7.6
CVE-2024-23262
Accessibility. This issue was addressed with additional entitlement checks.
Apple visionOS<1.1
Apple iOS<16.7.6
Apple iPadOS<16.7.6
Apple iOS<17.4
Apple iPadOS<17.4
CVE-2024-23259
Safari. The issue was addressed with improved checks.
Apple macOS Sonoma<14.4
Apple iOS<17.4
Apple iPadOS<17.4
Apple iOS<16.7.6
Apple iPadOS<16.7.6

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203